diff options
| author | Brenton Leanhardt <bleanhar@redhat.com> | 2015-12-04 11:06:57 -0500 |
|---|---|---|
| committer | Brenton Leanhardt <bleanhar@redhat.com> | 2015-12-04 11:06:57 -0500 |
| commit | ffb663f5f688ecaff0bfd2d928c8fba83c1d24f9 (patch) | |
| tree | 306cea4856c7c986e3ddffe60f87d6332c94755e /roles/openshift_manageiq/tasks | |
| parent | 1c01ea16e7acc002fd0c0c78301190155adcea3c (diff) | |
| parent | 04ce758d35666c9f887a9bb1b44ccae1d20ee908 (diff) | |
| download | openshift-ffb663f5f688ecaff0bfd2d928c8fba83c1d24f9.tar.gz openshift-ffb663f5f688ecaff0bfd2d928c8fba83c1d24f9.tar.bz2 openshift-ffb663f5f688ecaff0bfd2d928c8fba83c1d24f9.tar.xz openshift-ffb663f5f688ecaff0bfd2d928c8fba83c1d24f9.zip | |
Merge pull request #983 from enoodle/manageiq_service
Adding ManageIQ service account
Diffstat (limited to 'roles/openshift_manageiq/tasks')
| -rw-r--r-- | roles/openshift_manageiq/tasks/main.yaml | 50 |
1 files changed, 50 insertions, 0 deletions
diff --git a/roles/openshift_manageiq/tasks/main.yaml b/roles/openshift_manageiq/tasks/main.yaml new file mode 100644 index 000000000..2d3187e21 --- /dev/null +++ b/roles/openshift_manageiq/tasks/main.yaml @@ -0,0 +1,50 @@ +--- +- name: Copy Configuration to temporary conf + command: > + cp {{ openshift.common.config_base }}/master/admin.kubeconfig {{manage_iq_tmp_conf}} + changed_when: false + +- name: Add Managment Infrastructure project + command: > + {{ openshift.common.admin_binary }} new-project + management-infra + --description="Management Infrastructure" + --config={{manage_iq_tmp_conf}} + register: osmiq_create_mi_project + failed_when: "'already exists' not in osmiq_create_mi_project.stderr and osmiq_create_mi_project.rc != 0" + changed_when: osmiq_create_mi_project.rc == 0 + +- name: Create Service Account + shell: > + echo {{ manageiq_service_account | to_json | quote }} | + {{ openshift.common.client_binary }} create + -n management-infra + --config={{manage_iq_tmp_conf}} + -f - + register: osmiq_create_service_account + failed_when: "'already exists' not in osmiq_create_service_account.stderr and osmiq_create_service_account.rc != 0" + changed_when: osmiq_create_service_account.rc == 0 + +- name: Create Cluster Role + shell: > + echo {{ manageiq_cluster_role | to_json | quote }} | + {{ openshift.common.client_binary }} create + --config={{manage_iq_tmp_conf}} + -f - + register: osmiq_create_cluster_role + failed_when: "'already exists' not in osmiq_create_cluster_role.stderr and osmiq_create_cluster_role.rc != 0" + changed_when: osmiq_create_cluster_role.rc == 0 + +- name: Configure role/user permissions + command: > + {{ openshift.common.admin_binary }} {{item}} + --config={{manage_iq_tmp_conf}} + with_items: "{{manage_iq_tasks}}" + register: osmiq_perm_task + failed_when: "'already exists' not in osmiq_perm_task.stderr and osmiq_perm_task.rc != 0" + changed_when: osmiq_perm_task.rc == 0 + +- name: Clean temporary configuration file + command: > + rm -f {{manage_iq_tmp_conf}} + changed_when: false |